Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vg_EKm_pwdCGH0oQgBeqeHr3Mlw.roa
File: Vg_EKm_pwdCGH0oQgBeqeHr3Mlw.roa (raw, json)
Hash identifier: MNIKtIoD/c7b203jV5WFL4Ay8Zko9C0Il8yzlmw/PVM=
Subject key identifier: 56:0F:C4:2A:6F:E9:C1:D0:86:1F:4A:10:80:17:AA:78:7A:F7:32:5C
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 103E
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vg_EKm_pwdCGH0oQgBeqeHr3Mlw.roa
Signing time: Wed 01 Feb 2023 10:28:19 +0000
ROA not before: Wed 01 Feb 2023 10:28:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 220.229.0.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4158 (0x103e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Feb 1 10:28:19 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=560FC42A6FE9C1D0861F4A108017AA787AF7325C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:38:b9:39:6d:17:2f:a1:d6:73:7d:dd:a9:e5:
da:e0:1a:d0:3f:4c:91:ea:ed:77:7c:11:62:4d:cf:
0f:43:65:0a:7b:97:03:a2:30:87:cd:bb:75:6a:de:
88:4e:ca:3c:ae:cf:27:7b:26:2b:de:56:eb:1b:0e:
1e:1a:c0:18:16:db:b4:f9:f4:52:ea:54:61:7e:a2:
c3:56:ab:8a:41:fe:47:bf:88:d8:b3:38:ea:f4:61:
95:64:d6:89:67:d8:14:a9:3d:b9:06:ba:3a:f4:1e:
79:9e:ae:a2:a2:04:8b:73:6f:0d:b8:21:0a:5c:77:
e6:8d:8d:2a:0a:24:af:f5:6b:4b:8f:92:9e:36:45:
d6:78:12:3a:c5:c6:25:ca:30:d9:81:98:a6:13:a1:
03:06:f8:55:d8:5e:6a:b6:c6:47:76:4b:34:70:2c:
03:81:05:9b:54:ee:f4:d5:73:b9:4d:23:a6:0e:cc:
1a:52:32:8c:51:61:09:9f:6b:c5:d1:25:d9:48:e4:
39:23:24:86:ab:07:a3:5e:a7:2b:16:e8:13:10:ea:
80:9d:51:15:d2:3d:69:92:61:59:83:8a:a5:3c:b8:
af:ed:86:a8:5a:1e:e7:f5:80:e7:76:68:0c:7c:f8:
81:56:b8:4f:1e:d9:29:be:7e:84:53:43:4e:44:be:
e8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:0F:C4:2A:6F:E9:C1:D0:86:1F:4A:10:80:17:AA:78:7A:F7:32:5C
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vg_EKm_pwdCGH0oQgBeqeHr3Mlw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.0.0/18
Signature Algorithm: sha256WithRSAEncryption
23:be:48:b9:ed:84:b5:de:f6:d4:53:6a:e1:8f:1d:55:ab:45:
36:3e:4d:da:00:12:9d:e0:98:d1:b3:e3:4a:59:2e:60:59:0f:
e0:7f:ff:ae:ca:0e:09:04:54:59:09:fe:00:a4:69:0e:65:41:
47:10:e8:e7:f0:c9:59:f2:9e:04:c5:19:60:62:fc:05:f3:55:
35:13:fc:90:85:9b:7f:ee:09:ab:13:b8:8f:fe:54:73:b6:6f:
4d:cc:7b:59:ea:2c:67:24:fb:9a:a1:23:b3:c9:49:77:71:2f:
0c:23:24:c1:56:13:4e:23:63:f4:ff:7e:c6:f8:cd:63:bd:9d:
d3:c3:1c:06:58:79:07:d8:c9:14:ae:38:25:ba:7b:fc:6a:b8:
d2:1d:20:f1:d5:32:57:dd:fb:b2:66:c9:98:39:9b:17:4d:6b:
2b:a0:88:d6:28:1f:77:23:65:58:5d:ac:82:93:8f:80:80:d5:
f9:9e:aa:45:49:19:bc:16:98:9e:43:0e:81:a4:79:69:3f:6b:
06:d0:94:bc:05:a8:c1:17:42:cb:65:06:b8:14:be:88:47:91:
6a:7f:f8:a2:26:72:cf:ef:2e:cb:69:a2:4d:7d:66:cb:16:fd:
fb:da:62:5c:dc:54:dc:79:60:57:73:72:aa:db:3b:e0:83:7b:
e4:73:5f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:15 2023 by rpki-client on console-fra.rpki-client.org